You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@hbase.apache.org by Stack <st...@duboce.net> on 2017/10/07 02:47:50 UTC

To those who commented on the hbase refguide back in 2012...

I know, it was just one or two of you, but FYI,

We used disqus to catch comments on the old docbook refguide. It turns out
disqus had a compromise of a database from 2012 [1]. For those of you who
left a comment back then, your login may have been exposed. The disqus site
says:
Potential Impact For Users:

   -

   Right now there isn’t any evidence of unauthorized logins occurring in
   relation to this. No plain text passwords were exposed, but it is possible
   for this data to be decrypted (even if unlikely). As a security precaution,
   we have reset the passwords for all affected users. We recommend that all
   users change passwords on other services if they are shared.
   -

   Email addresses are in plain text here, so it’s possible that affected
   users may receive spam or unwanted emails.
   -

   At this time, we do not believe that this data is widely distributed or
   readily available. We can also confirm that the most recent data that was
   exposed is from July, 2012.

See [1] for more detail.
FYI. Thanks,
St.Ack

1. https://blog.disqus.com/security-alert-user-info-breach